OneAuth

Commit Graph

Author	SHA1	Message	Date
veypi	b0322047cd	feat: Restrict user APIs to admins and add public user search - Add /api/auth/users endpoint for authenticated users to search other users - Only return public info (id, username, nickname, avatar) in search results - Change /api/user routes to require user:admin permission instead of user:read - Update auth tests to use /api/auth/me for self updates - Add tests for new user search endpoint	1 week ago

Author

SHA1

Message

Date

veypi

b0322047cd

feat: Restrict user APIs to admins and add public user search

- Add /api/auth/users endpoint for authenticated users to search other users
    - Only return public info (id, username, nickname, avatar) in search results
    - Change /api/user routes to require user:admin permission instead of user:read
    - Update auth tests to use /api/auth/me for self updates
    - Add tests for new user search endpoint

1 Commits (7f7591cf6d9b75c3e2eae1ae0e5811dab62efa5d)